[ubuntu/resolute-proposed] dotnet10 10.0.104-10.0.4-0ubuntu1 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Wed Mar 11 13:52:11 UTC 2026
dotnet10 (10.0.104-10.0.4-0ubuntu1) resolute; urgency=medium
* New upstream release
* SECURITY UPDATE: denial of service
- CVE-2026-26130: Possible denial-of-service via SignalR stateful
reconnect buffer overfill.
* SECURITY UPDATE: denial of service
- CVE-2026-26127: System.Buffers.Text.Base64Url.DecodeFromChars
out-of-bounds read from malformed Base64Url input. A bug in the
implementation causes out-of-bound reads of the DecodingMap, potentially
leading to Access Violation Exceptions (AVEs) when unsafe code is used.
Date: 2026-03-06 14:01:10.578462+00:00
Changed-By: Mateus Rodrigues de Morais <mateus.morais at canonical.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/dotnet10/10.0.104-10.0.4-0ubuntu1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Resolute-changes
mailing list